dark_pyrro

Just create the DE_CH language file for the Bunny. I have no O.MG device so I can't tell if it's 1:1 or using some kind of format that differs from the Hak5 format. There's a ch.json language file for the Bunny, not sure if it's German though.

OK, if the target machine is able to identify the Bunny as a HID device, there's nothing wrong with the Bunny itself. It works as expected. Regarding your payload: I would do it slightly different, try something like: ATTACKMODE HID QUACK DELAY 3000 QUACK GUI r QUACK DELAY 500 QUACK STRING powershell QUACK ENTER First, you need to spell the commands correctly Then, you need to QUACK your DELAYs I'm rarely using Q instead of QUACK. Q is really just a shortcut/link to QUACK but I've experienced issues in the past that might have been linked to the use of Q and instead of taking time to deep dive into if that actually is the case, I just starting using QUACK only instead.

Ask Pineapple related questions in the Pineapple section of the forums

Judging from your previous posts, it doesn't seem to have been fully fine before either. Post some example payload code that doesn't work for you (if you're not trying anything else than just simply ATTACKMODE HID in your payload code). You could also try the following..... With the Bunny not attached to the PC, run the following in a Powershell window: Get-PnpDevice -PresentOnly | Where-Object {$_.InstanceId -match '^USB' } > USB01.txt Plug the Bunny into the same PC with a payload that includes ATTACKMODE HID and run (after the Bunny has booted up fully): Get-PnpDevice -PresentOnly | Where-Object {$_.InstanceId -match '^USB' } > USB02.txt Compare the files and see if there's any difference between the two: Compare-Object (Get-Content USB01.txt) (Get-Content USB02.txt) If the Bunny is identified, the output of the above command should be something like: InputObject ----------- OK HIDClass USB Input Device USB\VID_...

OK, so when you are connecting to the Pineapple using USB-C, what computer/OS are you using? Windows, Mac, Linux? When you've successfully factory reset the Pineapple, isn't there any AP visible in the format of "Pineapple_XXXX" (where XXXX is the last 4 characters of the Pineapple WiFi MAC address)? How are you able to do that if you can't even connect to the Pineapple? That's confusing.

Is it a Mark I or a Mark II Bunny? Isn't it possible at all to access the Bunny once it seems to have finished booting?

OK, if you get that directly after the recovery image, then I have no idea. If it was appearing only after updating the fw to 2.x then it could be a bad storage device.

OK, still not enough info So... are you trying to connect the Tetra as a client to a WiFi network in order to get internet access? https://docs.hak5.org/wifi-pineapple-6th-gen-nano-tetra/internet-connectivity/wifi-client-mode To not interfere with PineAP functionality, you need to add a WiFi adapter (or use ICS which I don't recommend since it's more or less always is a PITA to get it working) Or... use an Ethernet cable and connect the WAN port to a switch port on the local network

You have to try to explain that a bit more in detail. What are you actually trying to do? Why do you think that you need 2 WiFi adapters? 10-4 on that Don't know what this means or is referring to In what way is this linked to the issues that you are experiencing? What WiFi? I assume it's the Tetra. How do you confirm/verify that the WiFi goes off and on Install what?

Are you getting that message directly after using the recovery image or only after you have updated to the latest firmware (2.1.3)?

Corrupt in what way? When it says it's no good, what does sit say?

Are the clients active when it comes to communication? I.e. are they generating traffic?

If you bought the device from a reseller, you have to go via the reseller to sort things out.

What OS is the C2 server running on? Any local firewall? Are ports opened?

Any USB Rubber Ducky knock-off implementation should be discussed elsewhere. This forum section is about the "Classic" 1st generation USB Rubber Ducky from Hak5. Also, super old thread.

If Hak5 explicitly say that it is a Mark II device, then it is a Mark II device. You just have to follow the instructions provided by Hak5 since there are extremely few in the community that has gotten the Mark II by mistake and therefore can't assist in any way here on the forums.

Are the wireless networks (AP:s) visible in the Pineapple web UI settings when connected using USB-C to your computer?

Well, I have some doubts about that payload in general, but that's another discussion. Start with creating a simple payload that uses ATTACKMODE RNDIS_ETHERNET and attach the Bunny to the PC and verify that it shows up as a network device and hands out a DHCP lease to the PC from the 172.16.64.0/24 range.

As I understand your posts, you have problems getting both the Mark VII and the Packet Squirrel to appear in your C2 server web UI. To be able to help and troubleshoot your issues, you need to tell more about your C2 setup (how it's started, if it's on your local network or on the internet, etc.).

If you want the modules and they aren't available, then you need to develop them yourself. If it was me, I wouldn't spend many minutes trying to get those work since the methods are deprecated/useless in an absolute majority of cases nowadays.

For how long? Seconds or minutes?

If so, the factory reset hasn't been successful. Are you leaving it plugged to a power source the 4th time you've plugged it in during the reset procedure?

You have to be more specific. Since you mention sources.list, I can't really see how that relates to cloning a GitHub repo. It seems to me that you're trying to install something on the Bunny using apt (probably gcc or git or both) and it's apt throwing back errors at you (which is totally normal when it comes to the Bunny since it's running Debian Jessie and that is a deprecated release, hence the errors since it's not maintained any longer). In what way are you sure that factory reset doesn't work? By looking at the contents of the Bunny udisk (the storage device that mounts to the computer when you have set the Bunny in arming mode, or using ATTACKMODE STORAGE without a Micro SD card)? If so, that's no sign of if the Bunny was reset or not since the udisk is left untouched when doing a factory reset, i.e. all files and directories on the udisk is still there even though the Bunny (the OS and all the Hak5 specifics) have been reset.

Why isn't it any good?

Do you know what variant of the Squirrel you got? The old one (1st gen) or the "Mark II" that some seems to have gotten delivered.